Printer Friendly


NitroSecurity, Inc., Portsmouth, N.H., has unveiled the NitroView Enterprise Security Manager (ESM) X5, the market's first content-aware Security Information and Event Management (SIEM) platform with the ability to peer deep into application content and individual sessions for greatly enhanced network security forensics. Boasting a massive memory capacity of 512 Gigabytes of high-speed DRAM, the NitroView ESM X5 has broken the performance barrier that has commonly plagued legacy SIEM's by boosting speed and the ability to collect and report on security events by a factor of ten.

"SIEM systems must evolve well beyond log management if they are to truly become a critical element of the enterprise security contingency plan," said Michael Leland, chief technology officer of NitroSecurity. "NitroView X5 gives security managers the unprecedented ability to examine their infrastructure in full granular detail, including application content and full session details. It's the difference between guessing that a security breach may have happened four hours ago and knowing exactly which workstation, employee, and method was implemented to illegally capture credit card information."

NitroView ESM X5 builds on the company's flagship product NitroView ESM, a robust security platform widely recognized as the marketplace's highest performing SIEM with the ability to collect, correlate and report on security events from every device, application, and data source associated with an enterprise network in real-time - a requirement for enterprises looking for an immediate response capability.

At the core of a ten-fold jump in performance is a dedicated memory bank of 512 Gigabytes of high-speed DRAM, which allows NitroView to scale even higher without losing performance. As a result, the X5 can support uncompressed collection rates of up to 100,000 events and flows per second, and over 40 million events per second using event aggregation technology.

"When you're managing thousands of servers, you can't wait hours for the information you need to investigate a threat, because a threat can propagate quickly. If it's a virus, every second increases the scope and cost of disinfecting the network. If it's a breach of sensitive data, that data is going to move outside of your control very quickly. In any case, every second counts, and every second costs real dollars," stated Leland. "NitroView was already recognized as the highest-performance SIEM in the industry, but it's a not a question of being the fastest: it's a question of being fast enough to support content-aware correlation, especially in very large networks."

NitroSecurity's quest for high-performance information management isn't new. The company's core technology represents over 20 years of research and development, with several patents around data collection, storage and analysis that have allowed NitroView to distinguish itself into a new class of security information management. This technology, called NitroEDB, is sufficient to improve data management performance well beyond the capabilities of the traditional SQL or flat-file database systems used by other SIEMs-and is already responsible for earning NitroSecurity the leading position in SIEM performance.

About NitroView Enterprise Security Manager (ESM)

NitroView ESM is the first and only content-aware Security Information and Event Management platform. Using patented data storage and management technology, NitroView is able to collect and manage billions of events, logs, network activity flows, and even application content-while maintaining the real-time analytics that are required for rapid incident response. NitroView's unique capability to monitor and analyze application content along with typical security events and logs provides unparalleled visibility into data usage, provides unparalleled threat detection and fraud detection capabilities, and ensures that compliance reports are accurate and complete. NitroView is Common Criteria certified to EAL3, and is validated by the FIPS140-2 level 2, and is able to support FISMA rapid response requirements as well as DOD and NIST directives.

About NitroSecurity

NitroSecurity develops security information and compliance management solutions that protect business information and infrastructure. NitroSecurity solutions reduce business risk exposure and increase network and information availability by removing the scalability and performance limitations of security information management. Utilizing the industry's fastest analytical tools, NitroSecurity identifies correlates and remediates threats in minutes instead of hours, allowing organizations to quickly mitigate risks to the organization's information and infrastructure.

NitroSecurity serves more than 500 enterprises across many vertical markets, including healthcare, education, financial services, government, retail, hospitality and managed services.

For more information, visit or call 858/427-1667.
COPYRIGHT 2009 Worldwide Videotex
No portion of this article can be reproduced without the express written permission from the copyright holder.
Copyright 2009 Gale, Cengage Learning. All rights reserved.

Article Details
Printer friendly Cite/link Email Feedback
Publication:Computer Security Update
Geographic Code:1USA
Date:Aug 1, 2009

Terms of use | Copyright © 2018 Farlex, Inc. | Feedback | For webmasters